OIDC for Azure AD Enterprise Managed Users is now GA

OpenID Connect (OIDC) for authenticating enterprise managed users is now generally available for enterprises using Azure AD.

OIDC allows GitHub to use your identity provider's IP allow list policies to control where PAT and SSH keys can be used to access GitHub from, with granular control down to individuals. Enterprise customers using OIDC can now select whether to use their identity provider's IP allow list policies, or GitHub's built-in allow list feature.

image

image

To learn more about OIDC and enterprise managed users, see "Enterprise Managed Users" and "Migrating from SAML to OIDC for Enterprise Managed Users". To learn more about Azure AD's IP allow list functionality, see "Location based Conditional access"

GitHub secret scanning protects users by searching repositories for known types of secrets. By identifying and flagging these secrets, our scans help prevent data leaks and fraud.

We have partnered with Figma to scan for their API tokens and help secure our mutual users on public repositories. Figma API tokens can be used to read and interact with Figma and FigJam files — both through Figma’s own platform and other Figma-integrated applications. GitHub will forward access tokens found in public repositories to Figma, who will will immediately notify token owners. You can read more information about Figma's tokens here.

GitHub Advanced Security customers can also scan for Figma tokens and block them from entering their private and public repositories with push protection.

See more

Hot on the heels of GitHub Universe, we're bringing you simplified project creation and an improved experience for converting drafts into issues in repositories outside the project's organization.

Creating a project from your team or repository index page is now faster than ever! Instead of navigating to the organization page, simply use the dropdown on the Link a project button to select New project. We'll create a project and automatically link it to the team or repository from which it was created.

📤 Convert drafts into issues outside the project organization

Work often spans multiple repositories and even across organization boundaries so we want you to be able to quickly create issues in whichever repository you need, right from projects. That's why we've made it possible to convert a draft issue into an issue in any organization you have access to. When selecting the repository for your issue, type in the organization name ahead of the repository and we'll take care of the rest. We also support the @me operator if you'd like to create the issue in a personal repository.

🚀 Universe recap

If you missed us at Universe 2022, be sure to check out our blog post recapping our recent announcements and sign-up for the Private Betas for tasklists ☑ or roadmap 🗺️!

✨ Bug fixes and improvements

  • Support command + shift + enter to close or reopen an issue from the side panel
  • Respect "paste link as plain text" setting
  • Fixed a bug that allowed users without write access to see UI for restoring from archive

See how to use GitHub for project planning with GitHub Issues, check out what's on the roadmap, and learn more in the docs.

See more